From owner-freebsd-questions@FreeBSD.ORG  Mon Mar 27 19:37:41 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E181116A401
	for <freebsd-questions@freebsd.org>;
	Mon, 27 Mar 2006 19:37:41 +0000 (UTC)
	(envelope-from norgaard@locolomo.org)
Received: from strange.daemonsecurity.com
	(59.Red-81-33-11.staticIP.rima-tde.net [81.33.11.59])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4B55343D5C
	for <freebsd-questions@freebsd.org>;
	Mon, 27 Mar 2006 19:37:36 +0000 (GMT)
	(envelope-from norgaard@locolomo.org)
Received: from [172.16.2.1] (unknown [172.16.2.1])
	by strange.daemonsecurity.com (Postfix) with ESMTP id 774402E041;
	Mon, 27 Mar 2006 21:37:43 +0200 (CEST)
Message-ID: <44283EFD.4050600@locolomo.org>
Date: Mon, 27 Mar 2006 21:37:33 +0200
From: =?UTF-8?B?RXJpayBOw7hyZ2FhcmQ=?= <norgaard@locolomo.org>
Organization: Locolomo.ORG
User-Agent: Thunderbird 1.5 (X11/20060312)
MIME-Version: 1.0
To: Anish Mistry <amistry@am-productions.biz>
References: <442709A7.4070906@locolomo.org>
	<200603261733.10787.amistry@am-productions.biz>
In-Reply-To: <200603261733.10787.amistry@am-productions.biz>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Cc: freebsd-questions@freebsd.org
Subject: Re: Cyrus-IMAP disallowing clear text connections
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Mar 2006 19:37:42 -0000

Anish Mistry wrote:
> On Sunday 26 March 2006 16:37, Erik Nørgaard wrote:
>> Cyrus-IMAP accepts unencrypted connections _and_ authentication
>> even though I have set the following in imapd.conf
>>
>>    allowplaintext: yes
>>    allowplainwithouttls: no
>>
>> How do I force the use of TLS for Cyrus-IMAP?
>>
>> Also: Postfix allows hiding authentication mechanisms unless TLS is
>> invoked (so in clear text, capabilities just show STARTTLS), while
>> Cyrus-IMAP announces everything. Is there anyway to be more strict
>> with the cyrus in respect of what it announces?
 >
> sasl_minimum_layer: 128

Thanks, but that doesn't do it, everything still goes through nice and 
clear unless I set the client to use TLS.

Erik

-- 
Ph: +34.666334818                                  web: www.locolomo.org
S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt
Subject ID:  9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72
Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9